kerberos · threatengine.sh

Home/Product/microsoft windows server

Product

microsoft windows server

307 known vulnerabilities across versions

Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.

Sort Min CVSS Published since

Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability

Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability

Windows Kernel Elevation of Privilege Vulnerability

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

Windows Print Spooler Information Disclosure Vulnerability

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

Windows Clustered Shared Volume Elevation of Privilege Vulnerability

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability

Windows Clustered Shared Volume Information Disclosure Vulnerability

Windows Print Spooler Elevation of Privilege Vulnerability

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

BitLocker Security Feature Bypass Vulnerability

Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability

Windows Push Notifications Apps Elevation of Privilege Vulnerability

Windows Clustered Shared Volume Information Disclosure Vulnerability

Windows Clustered Shared Volume Information Disclosure Vulnerability

Windows WLAN AutoConfig Service Denial of Service Vulnerability

Windows Clustered Shared Volume Information Disclosure Vulnerability

Windows Fax Service Remote Code Execution Vulnerability

Windows Print Spooler Information Disclosure Vulnerability

Windows Digital Media Receiver Elevation of Privilege Vulnerability

Windows Graphics Component Information Disclosure Vulnerability

Microsoft Windows Media Foundation Remote Code Execution Vulnerability

Windows Print Spooler Elevation of Privilege Vulnerability

Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

Windows Failover Cluster Information Disclosure Vulnerability

Storage Spaces Direct Elevation of Privilege Vulnerability

Storage Spaces Direct Elevation of Privilege Vulnerability

Windows Network File System Remote Code Execution Vulnerability

Windows Server Service Information Disclosure Vulnerability

Windows WLAN AutoConfig Service Information Disclosure Vulnerability

Windows Graphics Component Information Disclosure Vulnerability

Windows NTFS Information Disclosure Vulnerability

Storage Spaces Direct Elevation of Privilege Vulnerability

Windows Kerberos Elevation of Privilege Vulnerability

Windows Remote Access Connection Manager Information Disclosure Vulnerability

Windows Graphics Component Remote Code Execution Vulnerability

Windows Address Book Remote Code Execution Vulnerability

Windows Authentication Information Disclosure Vulnerability

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

Windows Hyper-V Denial of Service Vulnerability

Remote Procedure Call Runtime Remote Code Execution Vulnerability

Windows PlayToManager Elevation of Privilege Vulnerability

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

Windows Graphics Component Information Disclosure Vulnerability

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

Windows Hyper-V Remote Code Execution Vulnerability

Windows Update Stack Elevation of Privilege Vulnerability

Win32 File Enumeration Remote Code Execution Vulnerability

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Windows ALPC Elevation of Privilege Vulnerability

Remote Desktop Protocol Client Information Disclosure Vulnerability

Windows HTML Platforms Security Feature Bypass Vulnerability

Tablet Windows User Interface Application Elevation of Privilege Vulnerability

Windows Fax and Scan Service Elevation of Privilege Vulnerability

Windows Security Support Provider Interface Elevation of Privilege Vulnerability

Windows PDEV Elevation of Privilege Vulnerability

Windows NT OS Kernel Elevation of Privilege Vulnerability

Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability

Windows Installer Elevation of Privilege Vulnerability

Windows Event Tracing Remote Code Execution Vulnerability

Windows Fast FAT File System Driver Elevation of Privilege Vulnerability

Windows DWM Core Library Elevation of Privilege Vulnerability

Windows Inking COM Elevation of Privilege Vulnerability

Windows DWM Core Library Elevation of Privilege Vulnerability

Windows ALPC Elevation of Privilege Vulnerability

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

Remote Desktop Client Remote Code Execution Vulnerability

Windows Print Spooler Elevation of Privilege Vulnerability

Windows ALPC Elevation of Privilege Vulnerability

Windows Common Log File System Driver Information Disclosure Vulnerability

Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability

Media Foundation Information Disclosure Vulnerability

Remote Desktop Client Remote Code Execution Vulnerability

Media Foundation Information Disclosure Vulnerability

Windows Hyper-V Denial of Service Vulnerability

Windows Print Spooler Elevation of Privilege Vulnerability

Named Pipe File System Elevation of Privilege Vulnerability

Windows Hyper-V Denial of Service Vulnerability

Windows Common Log File System Driver Denial of Service Vulnerability

Windows User Account Profile Picture Denial of Service Vulnerability

Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

Windows Common Log File System Driver Elevation of Privilege Vulnerability

Windows Common Log File System Driver Information Disclosure Vulnerability

Windows Print Spooler Elevation of Privilege Vulnerability

Windows Hyper-V Remote Code Execution Vulnerability

Windows DWM Core Library Elevation of Privilege Vulnerability

Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability

Windows Mobile Device Management Remote Code Execution Vulnerability

Windows Kernel Elevation of Privilege Vulnerability

Windows Remote Access Connection Manager Information Disclosure Vulnerability

Windows DNS Server Remote Code Execution Vulnerability

Windows Common Log File System Driver Elevation of Privilege Vulnerability

Roaming Security Rights Management Services Remote Code Execution Vulnerability

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

Workstation Service Remote Protocol Security Feature Bypass Vulnerability

Remote Procedure Call Runtime Remote Code Execution Vulnerability

Windows Defender Credential Guard Security Feature Bypass Vulnerability

Windows Kerberos Elevation of Privilege Vulnerability

DirectX Graphics Kernel File Denial of Service Vulnerability

Windows Common Log File System Driver Elevation of Privilege Vulnerability

Windows GDI+ Information Disclosure Vulnerability

Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

Local Security Authority (Domain Policy) Remote Protocol Security Feature Bypass

DirectX Graphics Kernel Remote Code Execution Vulnerability

Microsoft Cluster Port Driver Elevation of Privilege Vulnerability

Windows Installer Elevation of Privilege Vulnerability

HTTP Protocol Stack Remote Code Execution Vulnerability

Windows Defender Application Control Security Feature Bypass Vulnerability

Windows Hyper-V Security Feature Bypass Vulnerability

Windows GDI Information Disclosure Vulnerability

Windows GDI Elevation of Privilege Vulnerability

Windows DWM Core Library Elevation of Privilege Vulnerability

Windows Hyper-V Elevation of Privilege Vulnerability

Windows Hyper-V Security Feature Bypass Vulnerability

DirectX Graphics Kernel Remote Code Execution Vulnerability

Windows Common Log File System Driver Elevation of Privilege Vulnerability

Windows DWM Core Library Elevation of Privilege Vulnerability

Windows User Profile Service Elevation of Privilege Vulnerability

Secure Boot Security Feature Bypass Vulnerability

Remote Desktop Protocol Remote Code Execution Vulnerability

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability

Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability

Windows Modern Execution Server Remote Code Execution Vulnerability

Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability

Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability

Windows Kernel Elevation of Privilege Vulnerability

Windows GDI+ Information Disclosure Vulnerability

Windows Kernel Elevation of Privilege Vulnerability

Windows Geolocation Service Remote Code Execution Vulnerability

Storage Spaces Controller Information Disclosure Vulnerability

Win32k Information Disclosure Vulnerability

Windows Storage Elevation of Privilege Vulnerability

Windows Security Center API Remote Code Execution Vulnerability

Tile Data Repository Elevation of Privilege Vulnerability

Windows Event Tracing Elevation of Privilege Vulnerability

Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability

Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability

Clipboard User Service Elevation of Privilege Vulnerability

Windows Devices Human Interface Elevation of Privilege Vulnerability

Windows Push Notifications Apps Elevation of Privilege Vulnerability

Windows System Launcher Elevation of Privilege Vulnerability

Connected Devices Platform Service Elevation of Privilege Vulnerability

Windows UI Immersive Server API Elevation of Privilege Vulnerability

Windows StateRepository API Server file Elevation of Privilege Vulnerability

Windows Application Model Core API Elevation of Privilege Vulnerability

Task Flow Data Engine Elevation of Privilege Vulnerability

Windows AppContracts API Server Elevation of Privilege Vulnerability

Windows Accounts Control Elevation of Privilege Vulnerability

Windows Bind Filter Driver Elevation of Privilege Vulnerability

Active Directory Domain Services Elevation of Privilege Vulnerability

Windows DWM Core Library Elevation of Privilege Vulnerability

Remote Desktop Client Remote Code Execution Vulnerability

Remote Desktop Client Remote Code Execution Vulnerability

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability

Windows Hyper-V Denial of Service Vulnerability

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

Windows Cleanup Manager Elevation of Privilege Vulnerability

Windows Certificate Spoofing Vulnerability

Microsoft Cryptographic Services Elevation of Privilege Vulnerability

Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability

Virtual Machine IDE Drive Elevation of Privilege Vulnerability

Windows Encrypting File System (EFS) Elevation of Privilege Vulnerability

Windows Installer Elevation of Privilege Vulnerability

Windows Digital Media Receiver Elevation of Privilege Vulnerability

Windows TCP/IP Driver Elevation of Privilege Vulnerability

Windows Hyper-V Denial of Service Vulnerability

Windows Kernel Information Disclosure Vulnerability

NTFS Set Short Name Elevation of Privilege Vulnerability

Windows Recovery Environment Agent Elevation of Privilege Vulnerability

Windows Remote Access Elevation of Privilege Vulnerability

Windows Setup Elevation of Privilege Vulnerability

Microsoft Message Queuing Information Disclosure Vulnerability

Storage Spaces Controller Information Disclosure Vulnerability

Windows Fax Service Remote Code Execution Vulnerability

Remote Desktop Client Remote Code Execution Vulnerability

Windows Event Tracing Remote Code Execution Vulnerability

Windows NTFS Elevation of Privilege Vulnerability

Windows NTFS Elevation of Privilege Vulnerability

Windows NTFS Elevation of Privilege Vulnerability

SymCrypt Denial of Service Vulnerability

Storage Spaces Controller Information Disclosure Vulnerability

Windows Common Log File System Driver Information Disclosure Vulnerability

Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

Microsoft Message Queuing Information Disclosure Vulnerability

DirectX Graphics Kernel File Denial of Service Vulnerability

Windows Encrypting File System (EFS) Remote Code Execution Vulnerability

Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability

iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code Execution

Windows Common Log File System Driver Elevation of Privilege Vulnerability

Active Directory Domain Services Elevation of Privilege Vulnerability

Windows Core Shell SI Host Extension Framework for Composable Shell Elevation of Privilege Vulnerability

Windows Kernel Elevation of Privilege Vulnerability

Windows Hyper-V Denial of Service Vulnerability

NTFS Elevation of Privilege Vulnerability

Active Directory Domain Services Elevation of Privilege Vulnerability

Windows Text Shaping Remote Code Execution Vulnerability

Windows Nearby Sharing Elevation of Privilege Vulnerability

Windows Media Foundation Dolby Digital Atmos Decoders Remote Code Execution Vulnerability

Windows Hyper-V Remote Code Execution Vulnerability

Windows Remote Procedure Call Runtime Security Feature Bypass Vulnerability

Windows AD FS Security Feature Bypass Vulnerability

Windows Installer Spoofing Vulnerability

Rich Text Edit Control Information Disclosure Vulnerability

Windows Common Log File System Driver Elevation of Privilege Vulnerability

Windows exFAT File System Information Disclosure Vulnerability

Windows Fast FAT File System Driver Information Disclosure Vulnerability

Windows Print Spooler Spoofing Vulnerability

Windows TCP/IP Denial of Service Vulnerability

Storage Spaces Controller Elevation of Privilege Vulnerability

Windows DCOM Server Security Feature Bypass

An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files, aka 'Windows

The kerberos package before 1.0.0 for Node.js allows arbitrary code execution and privilege escalation via injection of malicious

A Reachable Assertion issue was discovered in the KDC in MIT Kerberos 5 (aka krb5) before 1.17. If an attacker can obtain a krbtgt

An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Elevation of Privil

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel I

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input f

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka "MS XML R

An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address, aka "Windows

An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in memory, aka "Win

A denial of service vulnerability exists in the Microsoft Server Block Message (SMB) when an attacker sends specially crafted requ

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, ak

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, ak

A remote code execution vulnerability exists when Microsoft Windows PDF Library improperly handles objects in memory, aka "Windows

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and

The Windows kernel in Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Win

The Cryptography Next Generation (CNG) kernel-mode driver (cng.sys) in Windows 10 Gold, 1511, 1607, 1703, and 1709. Windows Server

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and

The Microsoft Hyper-V Network Switch in 64-bit versions of Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.

The Microsoft Hyper-V Network Switch in 64-bit versions of Microsoft Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R

Windows Scripting Host (WSH) in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 a

Windows Shell in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2,

The Desktop Bridge in Windows 10 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of

The Microsoft Video Control in Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 an

The Desktop Bridge in Windows 10 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of

The Desktop Bridge Virtual File System (VFS) in Windows 10 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and

StructuredQuery in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows

The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windo

An issue was discovered in MIT Kerberos 5 (aka krb5) through 1.16. The pre-defined function "strlen" is getting a "NULL" string as

An issue was discovered in MIT Kerberos 5 (aka krb5) through 1.16. There is a variable "dbentry-n_key_data" in kadmin/dbutil/dump.

Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607

The Windows kernel component on Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and

Microsoft Graphics Component in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, W

Windows kernel in Windows 8.1 and RT 8.1, Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016, an

Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 1

Device Guard in Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016, and Windows Server, version 1709 allows an attac

Windows Search in Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 1

In MIT Kerberos 5 (aka krb5) 1.7 and later, an authenticated attacker can cause a KDC assertion failure by sending invalid S4U2Sel

plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before 1.13.1, when the KDC uses LDA

MIT Kerberos 5 (aka krb5) 1.7.x through 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (buffer over-rea

An unspecified third-party database module for the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.10.x allows remote

The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote atta

The unparse implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backe

MIT Kerberos 5 (aka krb5) 1.3.x, 1.4.x, 1.5.x, 1.6.x, 1.7.x, and 1.8.x through 1.8.3 does not properly determine the acceptability

The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 before 1.7.2, and 1.8 alpha, allows remote attackers to cause a

Multiple integer underflows in the (1) AES and (2) RC4 decryption functionality in the crypto library in MIT Kerberos 5 (aka krb5)

Heap-based buffer overflow in Microsoft Remote Desktop Connection (formerly Terminal Services Client) running RDP 5.0 through 6.1

The RPC Marshalling Engine (aka NDR) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and

The Windows Print Spooler in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 200

The asn1buf_imbed function in the ASN.1 decoder in MIT Kerberos 5 (aka krb5) 1.6.3, when PK-INIT is used, allows remote attackers

The get_input_token function in the SPNEGO implementation in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3 allows remote attackers t

The spnego_gss_accept_sec_context function in lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3, when

Multiple buffer overflows in krb5_aname_to_localname for MIT Kerberos 5 (krb5) 1.3.3 and earlier allow remote attackers to execute

The Key Distribution Center (KDC) in Kerberos 5 (krb5) 1.2.7 and earlier allows remote, authenticated attackers to cause a denial

The Key Distribution Center (KDC) in Kerberos 5 (krb5) 1.2.7 and earlier allows remote, authenticated attackers to cause a denial

Certain weaknesses in the implementation of version 4 of the Kerberos protocol (krb4) in the krb5 distribution, when triple-DES ke

Version 4 of the Kerberos protocol (krb4), as used in Heimdal and other packages, allows an attacker to impersonate any principal

Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary comma

Kerberos 4 (aka krb4) allows local users to overwrite arbitrary files via a symlink attack on new ticket files.

Kerberos 4 KDC program improperly frees memory twice (aka "double-free"), which allows remote attackers to cause a denial of servi

Kerberos 4 KDC program does not properly check for null termination of AUTH_MSG_KDC_REQUEST requests, which allows remote attacker

Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the e_msg variable in the kerb_

Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the localrealm variable in the

Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the lastrealm variable in the s

Buffer overflow in ksu in Kerberos 5 allows local users to gain root privileges.

Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges.

Buffer overflow in krb425_conv_principal function in Kerberos 5 allows remote attackers to gain root privileges.

Buffer overflow in krb_rd_req function in Kerberos 4 and 5 allows remote attackers to gain root privileges.

Buffer overflow in ssh 1.2.26 client with Kerberos V enabled could allow remote attackers to cause a denial of service or execute

Kerberos 4 key servers allow a user to masquerade as another by breaking and generating session keys.

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin